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(54) Title: APPARATUS AND METHOD FOR SECURE OBJECT ACCESS 

n 

^ (57) Abstract: A method and apparatus to use biometric data to secure an object connected to a computer. The objects maintains 
connections to one or more computers, and similarly to a biometric database that includes biometric data for computer users. Objects 
requests from computers can be coupled with biometric data from a plurality of computer users. The biometric data can be entered 
on a periodic basis as schedules by a security manager. Peripheral requests including biometric data can be subjected to a two-step 

^ analysis. First, the biometric data can be matched against the biometric database to ensure a match. If a match is not found, the 
request can be denied. If a match is found, the second analysis step includes determining whether the verified user has privilege for the 

"^^^ requested object access. Multiple objects connected to multiple computers is anticipated, and the two-step analysis can be combined 
into a single step by providing a biometric database that includes only authorized user information. A single biometric database can 
be used for all peripherals, or multiple biometric databases can exist for multiple peripherals. The objects can be peripheral devices 

^5 of any kind, they also can be smartcards, tokens or electronic cartridges. The peripheral devices can be inserted or removed from 

^ computer networks, computers, woricstations, PDA's, other peripheral devices such as printers or storage drives, handheld devices 
or other computerized instruments. 
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APPARATUS AND METHOD FOR SECURE OBJECT ACCESS 

BACKGROUND OF THE INVENTION 

(1) Field of the Invention 

5 The present mvention relates generally to accessing objects such as data files, 

executable files, computer code, embedded code, or drivers for peripheral devices 
attached to a network or to a computer. More particularly it relates to an apparatus and 
method to allow select users to access specified objects. 

(2) Description of the Prior Art 

10 The rapid increase in personal computer (PC) use and intemet access poses 

security problems for those wishing to secure a device, database, etc. that is connected to 
a network. The security problem can be viewed as an access problem, wherein those 
attempting to preserve a secure device desire to allow access to that device by known, 
certified users, or desire to only allow execution of known objects, or desire to protect 

1 5 the content of a file fi*om im-authorized viewing, listening or reading. 

The allowable users may be coimected through a local connection, a cable, an 
internal network, or an external network including the intemet. The connection can be 
made possible in wired, wireless, or contact-less mode. Identifying and correctiy 
certifying users in a reliable manner is therefore necessary to any secure apparatus or 

20 methodology. 

Peripherals include devices that are distinct fi'om the central processing unit, and 
provide systems with additional capabiUties, They are often, but not necessarily, 
extemally connected to a computing device, and include traditional devices such as 
printers, disk drives (hard, floppy, magnetic, optical, memory sticks, flash cards, smart- 

25 cards, PCMCIA-cards etc.), monitors, keyboards, etc. The definition of computing 
device, however, is expanding, and comprises cellular telephones, personal digital 
assistants, embedded processors, etc. 

Often, system or network managers wish to lunit user access to certain peripheral 
devices, with the most common examples including restricted access to particxilar 

30 printers or specific stomge devices. A prior art system presents an apparatus for locking 
auxiliary devices in portable computers. Other prior art systems provide means to 
secure peripherals using locks, bolts, and other securing hardware to prevent theft. None 
of the aforementioned patents provide a means to restrict user access when the device is 
connected to internal or external networks. Alternately, another prior art system permits 

. 35 access to secured computer resources using a system password that is derived firom a 
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plain text password and an external encryption algorithm. Unfortunately, plain text 
passwords and smartcards can be stolen, thereby causing a security problem. 

There is currently no method or apparatus that restricts object usage or peripheral 
device us^e using access rights and privileges that are biometrically connected to the 
5 user. The concept of "user" is also ejqpanding and is no longer limited to a human, but 
can include "software agents*'. Thus in the context of the present invention *\iser" 
includes humans and software agents directly or indirectly, biometrically or by other 
meanSj linkable to humans. 

What is needed is an apparatus and method that allows an owner, or a system or 
• 1 0 network manager to restrict or enable users from accessing peripherals based the 
recognition of the individual by means of biometric data. 

SUMMARY OF THE INVENTION 

The present disclosure provides an apparatus and method whereby access to 
IS computer peripheral devices is restricted by biometric data that is provided to the 
peripheral. If the biometric data appropriately matches biometric data stored in a 
database, access to the peripheral can be granted. 

The database can consist of a single template for a single user and be stored on 
the peripheral device. For example a biometric template can be stored in the memory of 
20 an electronic pen that contains certain private secure information regarding the owner of 
the pen. This private secure information can only be accessed by other objects in the 
• application system, for instance health care, if indeed the user of the pen is the registered 
owner of the pen, as authenticated through verification of the biometric template in the 
pen. 

25 The database may consist of multiple templates per user, of various biometric 

means, such as voice, fingerprint, uis-scan, etc. The database may consist of multiple 
users on a centralized storage means, or it may be distributed and replicated over 
multiple heterogeneous or homogeneous storage means interconnected through a 
network, as known in the art of database management. 

30 The peripheral devices may include memory devices, printers, cellular phones, 

personal digital assistants, and any other device that can be connected to a computer 
either directly, or remotely, such as through a network. Such connections may be wired, 
wireless or contactless. 

Other objectives and advantages of the present invention will become more 

35 obvious hereinafter in the specification and dmwings. 



wo 01/88677 PCTAJSOl/16227 

-3- 

These objectives are accomplished with the present invention by a method and 
apparatus to use biometric data to secure an object or a peripheral device connected to a 
computer. The peripheral device can maintain connections to one or more computers, - 
and similarly to a biometric database that includes biometric data for computer users. 
S Access requests to objects from computing devices can be coupled with biometric data 
from computer users. The biometric data can be entered on a periodic basis as 
schediiled by the security manager. Access requests to objects not including such 
biometric data can be immediately denied. Access requests to objects including 
biometric data can be subjected to a two-step analysis. First, the biometric data can be 

10 matched against the biometric database to ensure a match. If a match is not found, the 
request can be denied. If a match is found, the second analysis step can include 
determining whether the verified user has privilege for the requested peripheral. 
Multiple objects connected to multiple computing devices are anticipated, and the two- 
step analysis can be combined into a single step by providing a biometric database that 

1 5 includes only authorized user information. A single biometric database can be used for 
all objects, or multiple biometric databases can exist for a single or for multiple objects. 

BRIEF DESCRIPTION OF THE DRAWINGS 
A more complete understanding of the invention and many of the attendant 
20 advantages thereto will be readily appreciated as the same becomes better understood by 
reference to the following detailed description when considered in conjunction with the 
accompanying drawings, wherein like reference numerals refer to like parts and 
wherein: 

FIG. 1 presents an exemplary architectural block diagram of one illustrative 
25 system that practices the invention disclosed herein wherein the obj ect is a computer 
peripheral device, more specifically a printer; and, 

FIG. 2 presents an illustrative functional block diagram representing the 
verification process for a system according to FIG. 1 . 

30 DESCRIPTION OF THE ILLUSTRATED EMBODIMENTS 

To provide an overall imderstanding of the invention, certain illustrative 
embodiments will now be described; however, it will be understood by one of ordinary 
skiU in the art that the systems described herein can be adapted and modified to provide 
systems for other suitable applications and that other additions and modifications can be 

3 5 made to the invention without departing from the scope hereof 
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Referring now to FIG. 1 , there is shown a configuration 10 wherein a computer 
12 is connected to a peripheral device that is depicted in FIG. 1 as a printer 14. As is 
known in the art, the computer 12 can be any micro-processor device that is included in 
a computer workstation, such as a PC workstation or a SUN™ workstation, handheld, 
S laptop, pahntop, personal digital assistant, telephone, smartcard^ controller, etc., that 
comprises a program for organizing and controlling the microprocessor-based system to 
operate according to the invention as described herein. The microprocessor system can 
access information sources that are accessible via a communication network, keyboard, 
digital camera, microphone, etc. Additionally and optionally, the microprocessor-based 

10 system can be equipped for processing multimedia data, and can.be, for example, a 
conventional PC computer system with a sound and video card. The computer system 
can operate as a stand-alone system or as part of a networked computer system. 
Alternatively, the computer system can be a dedicated device, such as aa embedded 
system, that can be incorporated into existing hardware devices, such as telephone 

15 systems, PBX systems, sound cards, facsimile devices, scanners, printers, etc. 

Accordingly, it will be understood by one of ordinary skill in the art that the systems and 
methods described herein have wide applicability and can be incorporated in many 
systems, and realized in many forms, all without departing from the scope of the 
invention. 

20 For the purposes of this invention, a peripheral is any device that is distinct from 

the computer 12 central processing unit, and provides the "computer" 12 system with 
additional ftmctionality and/or capabilities. Examples peripherals can include a hard 
drive, floppy drive, optical drive, printer, keyboard, mouse, cellular phone, personal 
digital assistant, memory card, memory stick etc., although such a list is not intended to 

25 be exhaustive or limiting, but merely illustrative. The coimection between the peripheral 
device and computer can be vdred, wireless or contactless, and can be through a network 
such as the intemet, noting herein that the present invention is not limited to the 
connection between the computer and the peripheral device. As indicated herein, the 
computer 12 can be a personal computer, SUN^"^ workstation, handheld computer, or 

30 any other microprocessor-based device capable of connecting to an object such as a 

printer. Similarly, although FIG. 1 depicts a printer as the object, the invention herein is 
not so limited, and includes other objects for which access can or might be restricted, 
with the most common, traditional restricted-access devices including disk drives and 
other storage media. 

35 The illustrated computer 12 accesses flie printer 14 through an interface 16 that 

can be vsdred, wireless or contactless. Additionally, although only a single computer 12 
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is shown in the illustrative block diagram of FIG. 1, the present invention can 
encompass a multiple computer scenario, wherein multiple computers can be connected 
to a peripheral device. Similarly, multiple peripherals can be connected to multiple 
computers. In this specification, it shall therefore be understood that references to 'the 
5 computer" includes references to multiple computers, and likewise, references to 'the 
printer" includes references to any one or more peripheral devices connected to one or 
more of the multiple computers, for which limited or restricted access can be desired. 

The FIG. 1 computer 12 includes a printer driver 18 that allows the computer to 
communicate with the printer 14. Alternately, the printer driver 18 can access a 

10 biometric signature database 20. The FIG. 1 biometric signature database 20 includes 
biometric data for computer users. The biometric database 20 can be stored internally or 
extemally to the printer 14, and if the biometric database 20 is stored external to the 
printer 14, the connection between the two devices can be wired, wireless or contactless. 
The printer driver 18 can include software to access the biometric database 20 and 

15 retrieve information determining whether a specified user has access to the printer or to 
the files or the specified file to be printed on the printer 14. A separate biometric 
database 20 can be maintained for a given object (a print file), or a single biometric 
database can be accessible to multiple objects (print queue). 

The computer 12 can also include an application programmer interface (API) to 

20 allow users to be notified, through a print manager, of the printer status and printer 
availability based upon the biometric data. 

For the system of FIG. 1, the computer user 22 can enter biometric data to the 
computer through a biometric device 24 such as the LCI-SMARTpen®, although the 
invention is not so limited to such device, and any device capable of recording and 

25 translating biometric data to the computer 12 is acceptable. Other examples of biometric 
data include fingerprint data and human eye retinal data. In the case of the LCI- 
SMARTpen®, the pen records various biometric processes of the user related to the 
user's signature, including but not limited to, the writing speed, the pressure exerted 
upon the pen, and signature flow. The biometric data can be received by the computer 

30 12, and the printer driver 18 attaches the biometric data to print requests for the current 
user login session. The printer 14 can then access the biometric database 20 to first 
verify the biometric data attached to the print request, and to secondly verify that the 
user has the correct privilege for the printer 14. The user can be informed of a failed 
print request through the print manager API if the biometric data is not attached to the 

35 print request, if the biometric data entered by the user does not match the biometric 
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database 20, or if the user is not authorized to use the printer 14 even though the 
biometric data matches the biometric database 20. 

In an embodiment, the biometric data attached to the print request can be updated 
each login session, or for each print request, depending upon system architecture and 
5 security goals. A system manager or administrator can therefore establish the policy 
rules requiring the submission and subsequent updating of biometric data. 

Referring now to FIG. 2, there is an illustrative functional block diagram 30 of 
the logic for validating a request for access to an object. The illustrated object can 
receive a request with the associated user identification (ID) and biometric data 32, 

10 First, the object can verify that the user maintains a biometric database profile 34, and if 
. such a profile does not exist for this user, the request can be denied and the user can be 
informed that a database entry does not exist 36. Alternately, if the user maintains a 
database entry, the database entry corresponding to that user can be compared to the 
received biometric data 38. If the comparison 40 does not substantiate the user identity, 

IS the user can be informed that the biometric information is not valid 42, and the request 
for access to the object is denied. Alternately, if the biometric information is validated 
by the database information, it can be determined whether the user is authorized with the 
requested privileges for this specific object 44. Referring to FIG. 2, a privilege database 
46 can be utilized to store and subsequently access the various user privileges for 

20 different peripheral devices, although the invention herein is not limited to using a 

database and the invention allows for alternate embodiments wherein the privilege data 
is stored in unstructured memory. Depending upon the object and the application, the 
logic presented in 44 can actually require two sub-components. The first sub-component 
can determine \?^ether the user is privileged to make requests for the specified 

25 peripheral device, while the second sub-component can determine whether the user has 
the specific privileges presented by the request. For example, a user can have read 
privileges to a memory device, but not write privileges to that same device. In one 
embodiment, if either of the sub-component analyses produce a negative result, the user 
can be informed that the object privileges do not exist 48. Alternately, if both sub- 

30 component analyses produce a positive result, the request can be processed 50. 

As an example of a possible embodiment, a virus is introduced in a computer 
system by an imsuspected user. The computer system requires that objects cannot obtain 
privileges to be executed by the software agent unless the biometrics of the user and of 
the system manager match. However the virus, introduced by the user, has only has the 

35 user ID, and, maybe, the user's biometrics, but not the system manager's biometrics to 
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which the user-id has no access privilege, and thus the virus cannot be executed, and 
does cannot damage the system. 

As yet another illustration of a possible embodiment, a streaming digital music 
file can only be played by an MPS player if the mxisic file is authenticated by matching 
5 the biometrics of the buyer of the file with the biometrics of the owner of the MP3 

player and by the biometrics of the seller. The biometric templates are transferred to the 
MP3 player by means of a secure buyer certificate, as known in the art of public key 
infi:astructures, electronic signatures and asymmetric encryption. 

As another embodiment of the present invention, the peripheral device may have 

10 the form of a removable card, cartridge or token that can execute specific electronic 
functions such as MPS player or storage, and that is inserted in the writing instrument. 
Execution of the fimction can only occur after the computer has biometrically verified 
the user and decided that the user is entitled to use the card, token or cartridge. 

One advantage of the present invention over the prior art is that the present . 

1 5 invention provides an apparatus and method to securely access objects using biometric 
data. The invention is not limited to devices but applies to any object, hardware or 
software, used in a system. The invention extends the meaning of "user" fi-om a 
physical person to a logical entity, including software drivers for controllers of devices, 
or even software agents. Thus the invention extends biometric access control to all 

20 objects present in an environment that uses computing devices. As a result, a user can 
only have access to a biometrically annotated object if the access request contains 
instances of biometrics that match the biometric templates referred to in the object 
annotation. 

What has thus been described is a method and apparatus to use biometric data to 
25 secure an object used in a computer. The object can maintain coimections to one or 
more computers, and similarly to a biometric database that includes biometric data for 
computer users. Object access requests firom computers can be coupled with biometric 
data firom computer users. The biometric data can be entered on a periodic basis as 
scheduled by the security manager. Object access requests not including such biometric 
30 data can be immediately denied. Object access requests including biometric data can be 
subjected to a two-step analysis. First, the biometric data can be matched against the 
biometric database to ensure a match. If a match is not found, the request can be denied. 
If a match is found, the second analysis step can include determining whether the 
verified user has privilege for the requested peripheral. Multiple objects connected to 
35 multiple computers are anticipated, and the two-step analysis can be combined into a 
single step by providing a biometric database that includes only authorized user 
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information. A single biometric database can be used for all objects, or multiple 
biometric databases can exist for multiple objects. 

Thus an object may only be accessed when it is properly recognized (identified and 
authenticated) by biometric means and when the user has the appropriate access 
S privileges. As described the apparatus and method of this invention can protect computer 
environments against viruses, can deny printing of files by un-intended recipients, or can 
protect streaming video or audio files against playing by unauthorized users. 

Although the present invention has been described relative to a specific 
embodiment thereof, it is not so limited. Obviously many modifications and variations 

10 of the present invention may become apparent in light of the above teachings. For 

example, although a printer was utilized as the object, other objects may be used. Many 
processmg steps may be separated or otherwise combined without departing firom the 
scope of the invention. The communications links between devices and databases may 
be vsdred, wireless or contactiess. The databases may be replaced with other memory 

15 modules. The biometric signals may be of any type. 

Many additional changes in the details, materials, steps and arrangement of parts, 
herein described and illustrated to explain the nature of the mvention, may be made by 
those skilled in the art within the principle and scope of the iavention. Accordingly, it 
will be understood that the invention is not to be limited to the embodiments disclosed 

20 herein, may be practiced otherwise than specifically described, and is to be understood 
from the following claims, that are to be interpreted as broadly as allowed under the law. 
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I claim: 

I . An apparatus for securing an object, comprising: 

a micro-processor based device to submit requests to the object; 
S a biometric database connected to the object; 

a verification module to validate the requests against the biometric database. 

The apparatus of claim 1 , further comprising: 
a biometric device to collect biometric data; and 
a module to couple biometric data v^th the object request. 

3. The apparatus of claim 2, wherein the biometric device comprises a writing 
implement to record biometric data during a signature event, 

15 4; The apparatus of claim 2, wherein the biometric data is selected firom the group 
consisting of a fingerprint, human retinal information, human voice information, and 
human facial infonnation. 

5 . The apparatus of claim 1 , wherein the micro-processor based device is a personal 
20 computer. 

6. The apparatus of claim 1, wherein the micro-processor based device is a 
workstation. 

25 7. The apparatus of claim 1 , wherein the micro-processor based device is a 
handheld electronic device. 

8. The apparatus of claun 1, wherein the micro-processor based device is embedded 
in another electronic device. 

30 

9. The apparatus of claim 1 , wherein the micro-processor based device is a 
removable and exchangeable insert in another electronic device. 

1 0. ITie apparatus of claim 1 , wherein the object is a printer. 

35 

II. The apparatus of claim 1, wherein the object is a storage medium. 



2. 

10 
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12. The apparatus of claim 1 , wherein the object is a telephone. 

13. The apparatus of claim 1 , wherein the obj ect is a personal digital assistant. 
5 - , ■ 

14. The apparatus of claim 1, wherein the object is a DVD player. 

15. The apparatus of claim 1, wherein the object is a MP3 player. 

10 16. The apparatus of claim 1 , wherein the object is an software agent. 

17. The apparatus of claim 1 , wherein the object is a data file. 

18. The apparatus of claim 1, wherein the object is an executable software file, 

15 

19. A method of securing a object, comprising: 
establishing a biometric database; 

transmitting a request from a micro-processor based device to the object; and 
validating the requests against the biometric database. 

20 

20. The method of claim 19, further comprising: 
collecting biometric data using a biometric device; and 

coupling biometric data with the object request. 

25 21 . The method of claim 20, wherein collecting biometric data comprises recording 
biometric data from a writing implement during a signature event. 

^ 22. The method of claim 20, wherein collecting biometric data comprises accepting a 
fingerprint. 

30 

23. The method of claim 20, wherein collecting biometric data comprises obtaining 
human retinal information. 

24. The method of claim 1 9, wherein validating the requests against the biometric 
35 database further comprises: 

associating a user with the request; 
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ensuring there is user-specific biometric data in the biometric database; and 
ensuring there is user-specific biometric data associated with the object; and 
granting the request only upon verifying the user-specific biometric data against 
the request, and ensuring there are object-specific privileges for the user. 

5 

25. The method of claim 19, fiirther comprising developing an object-specific 
database to store user privileges for the object. 

26. The method of claim 24, wherein ensuring there are object-specific privileges for 
10 the user fiirther comprises: 

developing an object-specific database to store user privileges for the object; and 
verifying the user maintains privileges for the object 

27. The method of claim 26, further comprising requiring that the user maintains 
1 5 privileges consistent with the request. 

28. The methodofclaini 19, further comprising: 
processing only properly validated requests; and 

producing a message for tfxe micro-processor based device when requests are not 
20 properly validated. 

29. The method of claim 1 9 whereby the user is not a human but an executable code 
object associated with a human through biometric means and through privileges. 
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(57) Abstract: A method and apparatus 
to use biometric data to secure an object 
connected to a computer. The objects 
maintains connections to one or more 
computers, and similarly to a biometric 
database that includes biometric data 
for computer users. Objects requests 
from computers can be coupled with 
biometric data from a plurality of 
computer users. The biometric data 
can be entered on a periodic basis 
as schedules by a security manager. 
Peripheral requests including biometric 
data can be subjected to a two-step 
analysis. First, the biometric data can be 
matched against the biometric database 
to ensure a match. If a match is not 
found, the request can be denied. If a 
match is found, the second analysis 
step includes determining whether 
the verified user has privilege for 
the requested object access. Multiple 
objects connected to multiple computers 
is anticipated, and the two-step analysis 
can be combined into a single step 
by providing a biometric database 
that includes only authorized user 
information. A single biometric 

database can be used for all peripherals, or multiple biometric databases can exist for multiple peripherals. The objects can be 
peripheral devices of any kind, they also can be smartcards, tokens or electronic cartridges. The peripheral devices can be inserted 
or removed from computer networics, computers, workstations, PDA's, other peripheral devices such as printers or storage drives, 
handheld devices or other computerized instruments. 
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